TLS - The Cloudflare Blog (Page 6)

April 07, 2014 10:00AM

Staying ahead of OpenSSL vulnerabilities

TLS Bugs OpenSSL Vulnerabilities Reliability Security SSL

Today a new vulnerability was announced in OpenSSL 1.0.1 that allows an attacker to reveal up to 64kB of memory to a connected client or server (CVE-2014-0160). We fixed this vulnerability last week before it was made public....

Nick Sullivan

March 11, 2014 5:00PM

The Web's Silver Jubilee

History spdy TLS SSL Security

No matter what your age, it's hard to believe that the World-Wide Web is 25 today. For the young the web has always been part of their lives, for the older it seems like it was invented only yesterday....

John Graham-Cumming

March 10, 2014 4:30PM

ECDSA: The digital signature algorithm of a better internet

TLS HTTPS Crypto Elliptic Curves RSA Security

This blog post is dedicated to the memory of Dr. Scott Vanstone, popularizer of elliptic curve cryptography and inventor of the ECDSA algorithm. He passed away on March 2, 2014....

Nick Sullivan

February 14, 2014 1:00AM

Introducing Strict SSL: Protecting Against a On-Path Attack on Origin Traffic

TLS HTTPS Crypto Encryption SSL Security

At CloudFlare, we are always looking for ways to improve the security of our customers’ websites. One of the features we provide is the ability to serve their website encrypted over SSL/TLS....

Nick Sullivan

December 26, 2013 5:00PM

Using CloudFlare to mix domain sharding and SPDY

TLS Google Chrome spdy Speed & Reliability Security

It’s common knowledge that domain sharding, where the resources in a web page are shared across different domains (or subdomains), is a good thing....

John Graham-Cumming

November 21, 2013 9:00AM

Red October: CloudFlare’s Open Source Implementation of the Two-Man Rule

At CloudFlare, we are always looking for better ways to secure the data we’re entrusted with. This means hardening our system against outside threats such as hackers, but it also means protecting against insider threats....

By

Nick Sullivan

Crypto , Open Source , Encryption , RSA , GitHub

July 12, 2013 12:02AM

Staying on top of TLS attacks

CloudFlare makes extensive use of TLS connections throughout our service which makes staying on top of the latest news about security problems with TLS a priority. We use TLS both externally and internally and different uses of TLS have different constraints....

By

John Graham-Cumming

TLS , RC4 , Attacks , Security

February 04, 2013 2:26PM

New "Lucky Thirteen" SSL Vulnerabilities: CloudFlare Users Protected

CloudFlare often gets early word of new vulnerabilities before they are released. Last week we got word that today (Monday, February 4, 2013) there would be a new SSL vulnerability announced....

By

Matthew Prince

TLS , SSL , Vulnerabilities , Security

June 29, 2012 3:15AM

How to make SSL fast

HTTP, the protocol of the web, is unencrypted by default. That means it is trivial for someone using the same local network as you to spy on all the data you send to and receive from most websites....

By

Matthew Prince

OCSP , Speed & Reliability , SSL , TLS , Speed

June 15, 2012 10:43AM

Introducing SPDY

In 2009, Google began work on a new network protocol to make web pages faster. Dubbed SPDY (pronounced "speedy"), the protocol is designed to solve many of the bottlenecks that slow HTTP down. Beginning today, we're rolling out a beta of SPDY to CloudFlare customers....

By

Matthew Prince

TLS , Rocket Loader , spdy , HTTPS , Security

June 02, 2012 12:55AM

Taming BEAST: Faster, Safer SSL now on CloudFlare

For some time, the vast majority of the web has been vulnerable to the so-called BEAST SSL attack. The attack was first demonstrated in 2011, and more than 90% of the Internet including large sites like Google.com remain vulnerable to their SSL sessions being decrypted....

By

Matthew Prince

TLS , Security , SSL , Product News